WP Tavern › Forums › Create Topic
Max My security nightmare is the ongoing need that many plugins have to lower the security of your folders, WP Cache is one that comes to mind. Do I CHmod the folder, all folders in that folder, all files in all folders? Should I change it to 777, 775, 755, or many of the other possibilities? Can I make them secure again once the plugin is installed? And many more questions that are so often not addressed by the plugin creator. So you see my nightmares are more about worrying and being unsure of what is the right thing to do. I’d love to hear more about the .htaccess blocking of folder indexes that you mentioned. This is to be one of the biggest flaws with Wordpress as comes out of the box. I have never seen this addressed (is it in the Codex?) and have instead put redirect indexes in many of my folders. Can you please share the specifics of the other security mesaures that you take?
Max
My security nightmare is the ongoing need that many plugins have to lower the security of your folders, WP Cache is one that comes to mind. Do I CHmod the folder, all folders in that folder, all files in all folders? Should I change it to 777, 775, 755, or many of the other possibilities? Can I make them secure again once the plugin is installed? And many more questions that are so often not addressed by the plugin creator. So you see my nightmares are more about worrying and being unsure of what is the right thing to do.
I’d love to hear more about the .htaccess blocking of folder indexes that you mentioned. This is to be one of the biggest flaws with Wordpress as comes out of the box. I have never seen this addressed (is it in the Codex?) and have instead put redirect indexes in many of my folders. Can you please share the specifics of the other security mesaures that you take?
Name *
Email *
Website:
Topic Title (Maximum Length: 80):
Forum: — No forum —AI and WordPress Articles Blocks Showcase Discussions Events Introductions Jobs and Working in WordPress Podcast Episodes Site and Block Editor
Enter your email address to subscribe to this blog and receive notifications of new posts by email.
Email Address
Submit
Enter the destination URL
Or link to existing content